New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

IAPP AIGP Exam - Topic 3 Question 34 Discussion

Actual exam question for IAPP's AIGP exam
Question #: 34
Topic #: 3
[All AIGP Questions]

A company is creating a mobile app to enable individuals to upload images and videos, and analyze this data using ML to provide lifestyle improvement recommendations. The signup form has the following data fields:

1.First name

2.Last name

3.Mobile number

4.Email ID

5.New password

6.Date of birth

7.Gender

In addition, the app obtains a device's IP address and location information while in use.

What GDPR privacy principles does this violate?

Show Suggested Answer Hide Answer
Suggested Answer: A

The GDPR privacy principles that this scenario violates are Purpose Limitation and Data Minimization. Purpose Limitation requires that personal data be collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes. Data Minimization mandates that personal data collected should be adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed. In this case, collecting extensive personal information (e.g., IP address, location, gender) and potentially using it beyond the necessary scope for the app's functionality could violate these principles by collecting more data than needed and possibly using it for purposes not originally intended.


by Virgie at Jul 30, 2025, 09:04 PM

Limited Time Offer

25%

Off

Get Premium AIGP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Junita
2 months ago
Isn't this a bit over the top for a lifestyle app?
upvoted 0 times
...
Leonora
2 months ago
Totally agree, they’re collecting too much data!
upvoted 0 times
...
Jacob
2 months ago
Sounds like a clear violation of Purpose Limitation.
upvoted 0 times
...
Felix
3 months ago
I think it also touches on Accountability.
upvoted 0 times
...
Merlyn
3 months ago
Wait, are they really allowed to track location like that?
upvoted 0 times
...
Ashton
4 months ago
I think integrity and confidentiality are important, but they don't seem to fit this scenario as much as purpose limitation does.
upvoted 0 times
...
Casandra
4 months ago
I feel like transparency is definitely a key principle, but I'm not sure if accuracy is relevant in this context.
upvoted 0 times
...
Justine
4 months ago
This question reminds me of a practice case we did on data collection. I think it might be about accountability and lawfulness, but I could be wrong.
upvoted 0 times
...
Audra
4 months ago
I remember studying about purpose limitation and data minimization, but I'm not entirely sure how they apply here.
upvoted 0 times
...
Edmond
5 months ago
I've got a good handle on GDPR, so I feel confident I can identify the relevant principles here. The app is likely violating purpose limitation and data minimization based on the information provided.
upvoted 0 times
...
Lashunda
5 months ago
I'm a bit confused on the specifics of the GDPR principles, but this does seem like a lot of personal data being collected without a clear justification. I'll need to review my notes to answer this properly.
upvoted 0 times
...
Lashandra
5 months ago
Okay, I think the key GDPR principles that could be violated here are purpose limitation and data minimization. The app seems to be collecting more data than necessary for the stated purpose.
upvoted 0 times
...
Bette
5 months ago
Hmm, the app is collecting a lot of personal data, including sensitive information like location and IP address. I'm not sure if that aligns with GDPR principles.
upvoted 0 times
...
Quinn
5 months ago
This looks like a tricky GDPR question. I'll need to carefully consider the data fields and how the app is using the information.
upvoted 0 times
...
Elvera
6 months ago
D) Integrity and Confidentiality - Oof, with all that location and IP data, I hope they've got some top-notch security measures in place. Otherwise, it's open season on user privacy!
upvoted 0 times
...
Margarett
6 months ago
B) Accountability and Lawfulness - Ooh, this one's tricky. I bet the lawyers are having a field day with this one.
upvoted 0 times
...
Oretha
6 months ago
C) Transparency and Accuracy - Hmm, I'm not sure the users are fully aware of how their data is being used. Gotta love those sneaky privacy policies, am I right?
upvoted 0 times
Benedict
2 months ago
And accuracy too! Misleading info can cause issues.
upvoted 0 times
...
Arlette
3 months ago
Exactly! Transparency is key for user trust.
upvoted 0 times
...
Ivette
3 months ago
Right? Most people just click "accept" without reading.
upvoted 0 times
...
Gianna
3 months ago
Totally agree! Those privacy policies are often buried.
upvoted 0 times
...
...
Dwight
6 months ago
Yes, but they should only collect data that is necessary for the app's purpose.
upvoted 0 times
...
Chau
7 months ago
A) Purpose Limitation and Data Minimization - Definitely! They're collecting way more data than they need for a simple sign-up form. Creepy much?
upvoted 0 times
Benedict
6 months ago
A) Purpose Limitation and Data Minimization - Absolutely, they should only collect necessary data for the app to function properly.
upvoted 0 times
...
...
Eden
7 months ago
But isn't it necessary for the app to function properly?
upvoted 0 times
...
Cordie
7 months ago
I agree with Dwight, the app collects too much personal data.
upvoted 0 times
...
Dwight
7 months ago
I think it violates Purpose Limitation and Data Minimization.
upvoted 0 times
...

Save Cancel